Virus Exploit.PDF-28719

General Forum
Devcon
Phoca Newbie
Phoca Newbie
Posts: 1
Joined: 04 Jul 2011, 11:42

Virus Exploit.PDF-28719

Post by Devcon »

Hello,

I am used com_phocamaps_v1.1.1 in our websites.
Component is great,but in last days I receive virus warning.
Infected are :
administrator/components/com_phocamaps/front/assets/js/base64.js.Exploit.PDF-28719
components/com_phocamaps/assets/js/base64.js.Exploit.PDF-28719
administrator/components/com_phocamaps/front/assets/js/base64.js.Exploit.PDF-28719
components/com_phocamaps/assets/js/base64.js.Exploit.PDF-28719

Any ideas,what I must do?
Delete this files?
Re-install Phoca map component?
How to protect this component (and also web-page) from viruses?

Thank You in advance.
Devcon
User avatar
Jan
Phoca Hero
Phoca Hero
Posts: 48403
Joined: 10 Nov 2007, 18:23
Location: Czech Republic
Contact:

Re: Virus Exploit.PDF-28719

Post by Jan »

Hi, the files:

base64.js.Exploit.PDF-28719

are not a part of Phoca component, you need to save (protect) your folders on your servers against writing such files there from outside (permissions, ownership, etc.)

File: base64.js is standard javascript file without any exploit, just test it code (and check if someone did not change it)

The script is made by:
Base64 encode / decode
http://www.webtoolkit.info/

See original file in the ZIP and compare it to your one on your server.

Jan
If you find Phoca extensions useful, please support the project
Post Reply